Added unit test for actionable email viewer group access through email group rather than just direct email recipient

danielluo-msft · danielluo-msft · commit dd1b3bcbd1e2 · 2024-04-15T16:45:52.000-07:00
diff --git a/Service/GroupMembershipManagement/Hosts/WebApi/WebApi.Tests/NotificationsControllerTests.cs b/Service/GroupMembershipManagement/Hosts/WebApi/WebApi.Tests/NotificationsControllerTests.cs
@@ -367,10 +367,10 @@ public async Task GetNotificationCard_HandleNotFoundTestAsync()
         }
 
         /// <summary>
-        /// /notifications/{id}/card - Get card for a notification that no longer exists
+        /// /notifications/{id}/card - Get unauthorized card for a notification with a user who is not an owner nor in the actionable message viewer group
         /// </summary>
         [TestMethod]
-        public async Task GetNotificationCard_HandleUserNotGroupOwnerTestAsync()
+        public async Task GetNotificationCard_HandleUserNotGroupOwnerOrInViewerGroupTestAsync()
         {
             var claims = new List<Claim>
             {
@@ -388,6 +388,35 @@ public async Task GetNotificationCard_HandleUserNotGroupOwnerTestAsync()
             ValidateUnauthorizedCard(result.Content);
         }
 
+        /// <summary>
+        /// /notifications/{id}/card - Get valid card for a notification with a user who is not an owner but is in the actionable message viewer group
+        /// </summary>
+        [TestMethod]
+        public async Task GetNotificationCard_HandleUserNotGroupOwnerButInViewerGroupTestAsync()
+        {
+            var userObjectId = Guid.NewGuid().ToString();
+
+            _graphGroupRepository.Setup(x => x.IsEmailRecipientOwnerOfGroupAsync(
+                It.Is<string>(s => s == userObjectId), It.IsAny<Guid>()))
+                .ReturnsAsync(true);
+
+            var claims = new List<Claim>
+            {
+                new Claim(ClaimTypes.Upn, userObjectId),
+            };
+
+            _tokenValidationResult.ActionPerformer = userObjectId;
+            _notificationsController.ControllerContext = CreateControllerContext(claims, "mockBearerToken");
+
+            var response = await _notificationsController.GetCardAsync(_thresholdNotification.Id);
+            var result = response.Result as ContentResult;
+
+            Assert.IsNotNull(response);
+            Assert.IsNotNull(result?.Content);
+            Assert.AreEqual("application/json", result.ContentType);
+            ValidateUnresolvedCard(result.Content);
+        }
+
         /// <summary>
         /// /notifications/{id}/card - Get card for a resolved notification
         /// </summary>
